CVE-2020-1650

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS on MX Series versions 17.2R2-S7 through 17.4R2-S4 Juniper Networks Junos OS on MX Series versions 17.4R3 Juniper Networks Junos OS on MX Series versions 18.1R3-S3 through 18.1R3-S8 Juniper Networks Junos OS on MX Series versions 18.2R3 through 18.2R3-S2 Juniper Networks Junos OS on MX Series versions 18.3R2 Juniper Networks Junos OS on MX Series versions 18.4R2 Juniper Networks Junos OS on MX Series versions 19.1R1 Juniper Networks Junos OS on MX Series versions 19.2R1 Juniper Networks Junos OS on MX Series versions 19.3R1

Description: The issue affects Juniper Networks Junos MX Series devices with MS-PIC, MS-MIC, or MS-MPC service cards and any service configured. Receipt of specific packets may crash the MS-PIC component, causing a Denial of Service. An attacker can repeatedly bring down MS-PIC by continuously sending these packets. This is related to an uncontrolled resource consumption issue in the JunOS operating system of MX series routers.

Recommendations: For Juniper Networks Junos OS on MX Series versions 17.2R2-S7 through 17.4R2-S4, update to a version outside of this range to resolve the issue. For Juniper Networks Junos OS on MX Series versions 17.4R3, update to a version outside of this range to resolve the issue. For Juniper Networks Junos OS on MX Series versions 18.1R3-S3 through 18.1R3-S8, update to a version outside of this range to resolve the issue. For Juniper Networks Junos OS on MX Series versions 18.2R3 through 18.2R3-S2, update to a version outside of this range to resolve the issue. For Juniper Networks Junos OS on MX Series versions 18.3R2, update to a version outside of this range to resolve the issue. For Juniper Networks Junos OS on MX Series versions 18.4R2, update to a version outside of this range to resolve the issue. For Juniper Networks Junos OS on MX Series versions 19.1R1, update to a version outside of this range to resolve the issue. For Juniper Networks Junos OS on MX Series versions 19.2R1, update to a version outside of this range to resolve the issue. For Juniper Networks Junos OS on MX Series versions 19.3R1, update to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting access to the service cards to minimize the risk of exploitation.